Main
Vulnerability Database
Exploits
ID:159 - Exploit for Out-of-bounds read in Red Hat Enterprise Linux for x86_64 - CVE-2017-1000250
ID:159 - Exploit for Out-of-bounds read in Red Hat Enterprise Linux for x86_64 - CVE-2017-1000250
Published: March 18, 2020
Vulnerability identifier: #VU8442
Vulnerability risk: Low
CVE-ID: CVE-2017-1000250
CWE-ID: CWE-125
Exploitation vector: Adjecent network
Vulnerable software:
Red Hat Enterprise Linux for x86_64
Red Hat Enterprise Linux for x86_64
Link to public exploit:
Vulnerability description
The vulnerability allows an adjacent attacker to obtain potentially sensitive information on the target system.
The weakness exists in the bluetoothd implementation of the Service Discovery Protocol (SDP) due to out-of-bounds heap read condition in the service_search_attr_req function. An adjacent attacker send specially crafted requests that has Bluetooth enabled in the SDP server and access sensitive information, such as encryption keys, from bluetoothd process memory.
Successful exploitation of the vulnerability results in information disclosure.
The weakness exists in the bluetoothd implementation of the Service Discovery Protocol (SDP) due to out-of-bounds heap read condition in the service_search_attr_req function. An adjacent attacker send specially crafted requests that has Bluetooth enabled in the SDP server and access sensitive information, such as encryption keys, from bluetoothd process memory.
Successful exploitation of the vulnerability results in information disclosure.
Remediation
Cybersecurity Help is currently unaware of any official patch addressing the vulnerability.